$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1QwpV9-oQKlDD7nuJdTc-hcSnBg.mft File: 1QwpV9-oQKlDD7nuJdTc-hcSnBg.mft (raw, json) Hash identifier: meTDzr2eUvYl9D8ex4HP2y5pRRm6NpW+HuaGZHIeDek= Subject key identifier: C8:24:F5:D8:0E:EB:AF:00:51:F7:27:16:CE:73:71:93:6E:B4:B3:3D Authority key identifier: D5:0C:29:57:DF:A8:40:A9:43:0F:B9:EE:25:D4:DC:FA:17:12:9C:18 Certificate issuer: /CN=A91FDD4D/serialNumber=D50C2957DFA840A9430FB9EE25D4DCFA17129C18 Certificate serial: 019A Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/1QwpV9-oQKlDD7nuJdTc-hcSnBg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1QwpV9-oQKlDD7nuJdTc-hcSnBg.mft Manifest number: 0197 Signing time: Mon 12 May 2025 15:53:45 +0000 Manifest this update: Mon 12 May 2025 15:53:44 +0000 Manifest next update: Mon 19 May 2025 15:53:44 +0000 Files and hashes: 1: 1QwpV9-oQKlDD7nuJdTc-hcSnBg.crl (hash: gSQhleNvyWoHhb5/f2R2kJfzMFDMZFXgD4KYz4WnpCs=) 2: 1046CB98D28311EDB1655152C4F9AE02.roa (hash: Kqt9mEj0giKftuB2DBO692CGsOF5kZIoQznyePkJFyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1QwpV9-oQKlDD7nuJdTc-hcSnBg.crl rsync://rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1QwpV9-oQKlDD7nuJdTc-hcSnBg.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/1QwpV9-oQKlDD7nuJdTc-hcSnBg.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 15:53:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 410 (0x19a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDD4D, serialNumber=D50C2957DFA840A9430FB9EE25D4DCFA17129C18 Validity Not Before: May 12 15:53:44 2025 GMT Not After : May 19 15:53:44 2025 GMT Subject: CN=68221989-ab7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:df:6b:ac:3b:bb:4a:9c:8c:5f:0e:ff:48:f5: 13:fd:ad:b2:5e:a7:23:3e:c5:33:b4:99:3b:79:66: 84:b9:56:40:1e:93:8c:b1:69:4e:3b:9d:fd:e5:08: b9:10:ce:7f:29:b2:d6:96:13:a5:8f:e8:af:3b:21: d0:eb:f0:45:b1:64:d7:ea:6b:81:ea:af:ea:ed:19: 92:e1:f5:cf:d3:24:e4:2d:5d:f1:9e:40:79:23:61: 6a:57:05:96:5d:d7:ad:7e:ed:5f:95:70:1f:67:a1: ef:89:ae:c0:a0:ed:fc:a4:18:0f:3a:42:a3:f4:49: ab:9c:a5:d3:f0:06:6c:b9:05:d7:1e:0a:37:4b:f0: 82:c1:18:28:83:c3:a4:61:98:d8:2d:fe:75:5b:50: e6:c9:e3:55:ed:06:76:48:c5:cc:5c:ab:3f:3e:d2: 61:15:e9:af:cd:89:15:94:29:80:60:e4:b9:03:09: 51:1e:97:87:0b:b0:42:c8:54:e7:b6:e8:04:4b:4d: 5e:19:0c:4b:d6:c5:30:e8:a5:16:4e:6c:4b:52:eb: 8b:a2:a4:38:8f:ed:0a:8b:6d:02:59:0f:e1:ca:21: 3c:f9:9b:01:b3:31:32:70:3f:dd:5c:a6:3f:50:37: 1e:d9:8e:2f:0c:8e:c8:1c:f2:09:79:45:cb:94:be: cd:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:24:F5:D8:0E:EB:AF:00:51:F7:27:16:CE:73:71:93:6E:B4:B3:3D X509v3 Authority Key Identifier: keyid:D5:0C:29:57:DF:A8:40:A9:43:0F:B9:EE:25:D4:DC:FA:17:12:9C:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1QwpV9-oQKlDD7nuJdTc-hcSnBg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/1QwpV9-oQKlDD7nuJdTc-hcSnBg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1QwpV9-oQKlDD7nuJdTc-hcSnBg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:63:0d:86:98:66:8b:db:12:60:e5:87:c1:8a:79:d4:2b:99: f6:bb:63:4f:99:53:9f:f3:6e:35:b9:11:3f:18:5c:d7:30:11: 77:22:64:56:f9:d9:37:2f:ef:33:a5:9b:f9:0a:33:a7:b4:a8: ed:c6:f5:f7:2b:52:96:3b:c3:49:2e:83:40:27:f8:ac:81:f1: 2f:a1:36:13:2e:c8:bb:39:e9:eb:9c:c5:96:3f:4d:1b:18:bc: 6d:6d:a8:cd:31:10:78:b3:eb:12:5f:db:fd:bb:f5:fd:79:4e: 0e:f8:fc:9a:26:4a:a9:56:72:fa:ca:e8:23:4f:3a:42:42:02: 47:dc:3f:ef:a9:2b:4e:c0:39:eb:da:1e:19:00:b6:db:bf:02: 0c:91:fd:2f:22:bc:3b:2d:c4:5d:5d:23:59:a5:43:15:e6:01: 30:15:ef:cc:82:49:d1:f4:11:0b:ef:23:74:cd:07:e5:9a:e2: 23:ac:c0:3a:a8:6c:cf:3b:89:03:99:e3:1e:22:b7:7f:e9:78: ec:15:29:e7:8f:4a:58:39:c5:d3:f8:29:97:1d:60:1b:b7:e3: ba:e1:a5:ba:d9:6f:08:95:b9:9f:1f:68:af:53:c4:66:bc:32: 51:b5:41:31:83:e8:c3:ff:74:44:b6:7f:77:0c:f9:53:d5:fc: 4b:97:1c:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRENEQxMTAvBgNVBAUTKEQ1MEMyOTU3REZBODQwQTk0MzBGQjlFRTI1RDREQ0ZB MTcxMjlDMTgwHhcNMjUwNTEyMTU1MzQ0WhcNMjUwNTE5MTU1MzQ0WjAYMRYwFAYD VQQDEw02ODIyMTk4OS1hYjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyN9rrDu7SpyMXw7/SPUT/a2yXqcjPsUztJk7eWaEuVZAHpOMsWlOO5395Qi5 EM5/KbLWlhOlj+ivOyHQ6/BFsWTX6muB6q/q7RmS4fXP0yTkLV3xnkB5I2FqVwWW Xdetfu1flXAfZ6Hvia7AoO38pBgPOkKj9EmrnKXT8AZsuQXXHgo3S/CCwRgog8Ok YZjYLf51W1DmyeNV7QZ2SMXMXKs/PtJhFemvzYkVlCmAYOS5AwlRHpeHC7BCyFTn tugES01eGQxL1sUw6KUWTmxLUuuLoqQ4j+0Ki20CWQ/hyiE8+ZsBszEycD/dXKY/ UDce2Y4vDI7IHPIJeUXLlL7N7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMgk9dgO 668AUfcnFs5zcZNutLM9MB8GA1UdIwQYMBaAFNUMKVffqECpQw+57iXU3PoXEpwY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREQ0RC82NjBFMDU4OEQy N0QxMUVEOEU5QTI1ODBDNEY5QUUwMi8xUXdwVjktb1FLbEREN251SmRUYy1oY1Nu QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzFRd3BWOS1vUUtsREQ3bnVKZFRjLWhjU25CZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REQ0RC82NjBFMDU4OEQyN0QxMUVEOEU5QTI1ODBDNEY5QUUwMi8xUXdwVjktb1FL bEREN251SmRUYy1oY1NuQmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyYw2GmGaL2xJg5YfBinnUK5n2u2NPmVOf8241uRE/GFzXMBF3ImRW +dk3L+8zpZv5CjOntKjtxvX3K1KWO8NJLoNAJ/isgfEvoTYTLsi7OenrnMWWP00b GLxtbajNMRB4s+sSX9v9u/X9eU4O+PyaJkqpVnL6yugjTzpCQgJH3D/vqStOwDnr 2h4ZALbbvwIMkf0vIrw7LcRdXSNZpUMV5gEwFe/MgknR9BEL7yN0zQflmuIjrMA6 qGzPO4kDmeMeIrd/6XjsFSnnj0pYOcXT+CmXHWAbt+O64aW62W8IlbmfH2ivU8Rm vDJRtUExg+jD/3REtn93DPlT1fxLlxxZ -----END CERTIFICATE-----Generated at Tue May 13 06:40:53 2025 by rpki-client